System and method for biometric-based fraud protection

ABSTRACT

A biometric fingerprint device for preventing fraud based on the device having standalone, self-authentication of the identity of predetermined user(s) and its interactivity with a database that is initiated via a controlled singularity of registration, i.e. contemporaneous registration of a user&#39;s fingerprint(s) into a database and registration, initialization, and authentication of that same fingerprint(s) onto a standalone biometric fingerprint device.

CROSS-REFERENCE TO RELATED U.S. PROVISIONAL PATENT APPLICATIONS

This application is a 371 of PCT/US02/40759 Dec. 19, 2002 claims thebenefit of U.S. Provisional Application No. 60/342,278, filed in theUnited States Patent and Trademark Office on Dec. 19, 2001, the entiretyof application is incorporated herein by reference.

BACKGROUND OF THE INVENTION

(1) Field of the Invention

The present invention relates generally to biometric identificationdevices and, more particularly, to a biometric fingerprint device forpreventing fraud based on the device having standalone,self-authentication of the identity of predetermined user(s) and itsinteractivity with a database that is initiated via a controlledsingularity of registration.

(2) Description of the Prior Art

Prior art biometric devices commonly employ fingerprint identificationand verification as a means for protecting the use of the device forproximity pass, apparatus activation, and access to information.Furthermore, it is known in the prior art to use portable informationand transaction processing devices (PITP devices). These devices can beused to perform secure financial transactions, to allow the user accessto another apparatus, or to transmit information for various personalreasons. To perform these functions, these devices are able to storedata internally and transmit data, including personal user data, overcommunication lines. PITP devices may also employ biometric verificationto ensure the identity of the user. In these devices, biometricverification may include finger, thumb, palm, and voice print,handwriting sample, retinal vascular pattern, and combinations thereof.Additionally, these devices have been constructed to include cardreaders that read information storage cards. Also, these devices canencrypt information and transmit it via dual-tone multi-frequency,modem, radio frequency, and infrared media. However, none of thesedevices is a standalone device, in that they require an external centraldata storage and processing unit to verify the identity of the PITPdevice user. Additionally, because the data is stored on a central datastorage unit, the security of these devices and information relating totheir users may be eventually compromised. In such a case, unauthorizeduse of the PITP device may occur, allowing unauthorized transactions. Asingle device has overcome this deficiency by incorporating the storagemeans of the biometric information within the PITP device. Thus, thedevice is freestanding and will not emit a signal unless the appropriateuser is using the device. However, this device does not also emit tonalsignals to confirm authentication of the user via biometricidentification means. Therefore, there remains a need for aself-authenticating biometric identification device that can be used inconnection with an encoded packet output, e.g., a digitized tonal outputalso having capacity to be used with portable information andtransaction processing devices. Particularly where privacy is asignificant concern, it is advantageous to provide a biometric devicewithin which the individual fingerprint and other data or information isstored, i.e., there is no requirement for transmitting the fingerprintitself to a remote confirmation bank or source that stores theregistered information against which the sensed fingerprint is verified.

Furthermore, there is a need to provide protection from fraudulent useof identification, including counterfeit identification, in particularfor security applications, government benefits receipt, exclusivityapplications, and the like. The identification cards of the prior art donot provide means for preventing fraud or counterfeit IDs. Also, theprior art, including the U.S. Pat. No. 5,623,552 issued Apr. 22, 1997 toLane for SELF-AUTHENTICATING IDENTIFICATION CARD WITH FINGERPRINTIDENTIFICATION, either do not communicate with a database to preventfraud by multiple registrations for any given user, or the ID cardsrequire communication with a database for any and all transactions forwhich the card is used.

More particularly, the following U.S. patent citations provide a basisfor establishing the prior art relevant to the present invention:

U.S. Pat. No. 6,016,476 issued Jan. 18, 2000 to Maes, et al. forPortable information and transaction processing system and methodutilizing biometric authorization and digital certificate security. Thispatent teaches a portable client PDA with touch screen, microphone, andCPU for processing voice commands, and processing biometric data toverify user. Also it has memory for storing personal/financial data, andcapability for reading/writing information to various smart cards,magnetic cards, etc.

U.S. Pat. No. 6,084,967 issued Jul. 4, 2000 to Kennedy, et al. for Radiotelecommunication device and method of authenticating a user with avoice authentication token. The user must insert a PIN and utter sounds;the radiotelephone device will activate secure functions only if PIN iscorrect and uttered sounds are authenticated against stored voicefeature information.

U.S. Pat. No. 5,465,290 issued Nov. 7, 1995 to Hampton, et al. forConfirming identity of telephone caller. Data stored in a processingstation corresponds to a signature and caller identification informationfor users. A second processing station includes speaker verificationunit and processor, which receives voice or tone signal representingsignature of potential user and processes this. Processor is connectedto speaker verification unit and connects to first processing station totest the signature of user against valid signature of user.

U.S. Pat. No. 5,897,616 issued Apr. 27, 1999 to Kanevsky, et al. forApparatus and methods for speaker. Providesverification/identification/classification employing non-acoustic and/oracoustic models and databases. Secure method and apparatus for access toservice facility employing voice recognition; based on personalinformation an individual is questioned, a voice sample is obtained andverified. A score is generated based in comparison to spoken answer andvoice sample, and access is granted if score is at or above a threshold.Alternatively, a series of questions could be asked and potentialmatches to the speaker are eliminated after comparison of voice/responseanalysis.

U.S. Pat. No. 5,806,040 issued Sep. 8, 1998 to Vensko for Speechcontrolled telephone credit card verification system. The systemconnects user to phone network, user enters a card number, a voiceverification template is retrieved and contains samples of user's voicestating selected words/phrases/numbers. The user is prompted to stateone of these and comparison is made. User is authorized if match ismade.

None of the previously issued patents cited in the foregoing provide abiometric device having internal memory and internal controller meanswhile also providing a tonal output and database interactivity forauthorizing transactions from the device via modem communication means.

Thus, there remains a need for a biometric identification device,specifically a self-authenticating, biometric fingerprint identificationdevice having internal memory and internal controller, an encoded orencrypted information packet output, e.g., a digitized tonal output, anda unique transaction identifier, wherein the self-authenticating ID cardinteracts with a database that is initiated via a controlled singularityof registration all of which are provided in the present invention.

SUMMARY OF THE INVENTION

The present invention is directed to a biometric fingerprint device forself-authenticating identification of at least one user of the deviceincluding internal memory and controller means within a substrate of thedevice and encoded packet(s) of information output, e.g., a digitizedtonal output, for communicating with a remote transaction facilitator,wherein the self-authenticating ID card interacts with a database thatis initiated via a controlled singularity of registration.

In particular, applications include both open and closed databases, forthe purpose of identifying one user from many and eliminating thepossibility of duplicate registration, e.g., for high security,military, government services and benefits receipts, passports/visas,drivers licenses, etc.

Additionally, the present invention is directed to a biometric devicefor self-authenticating identification of at least one user via abiometric identification input by the user, which may be informationrelating to at least one fingerprint, voice, etc., including a uniquetransaction identifier for increased security, particularly with retailtransactions made via phone, wireless device, Internet, satellite, orother communication means, after the initial singularity of registrationof the user for the card and with the database; as such, transactions donot require communication with the database after the initialcontemporaneous registration process is completed.

Accordingly, one aspect of the present invention is to provide abiometric fingerprint device for self-authenticating identification ofat least one user of the device including internal memory and controllermeans within a substrate of the device and an encoded or encryptedinformation packet output, e.g., a digitized tonal output, forcommunicating with a remote database after a singularity of registrationof the user for the card and with the database occurs.

Another aspect of the present invention is to provide a biometricfingerprint device for self-authenticating identification of at leastone user including transaction functions that provide for approval ordenial of card use and automatic database communication with the cardfor updating the card after initial registration, including but notlimited to updating, invalidating, timer synchronizing, and the like.

These and other aspects of the present invention will become apparent tothose skilled in the art after a reading of the following description ofthe preferred embodiment.

BRIEF DESCRIPTION OF DRAWINGS

FIG. 1 is a flow diagram of methods according to the present invention.

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS

According to the present invention, a biometric device is provided forself-authenticating identification of at least one user. Basic functionsand configurations of the biometric device are set forth by U.S. Pat.No. 5,623,552 issued Apr. 22, 1997 to Lane for Self-authenticatingidentification card with fingerprint identification and co-pending U.S.Pat. No. 09/780,637 by Lane filed Feb. 08, 2001 which are both owned bya common assignee and are each incorporated herein by reference in theirentirety. Referring now to FIG. 1, a flow diagram illustrating stepswithin methods according to the present invention is shown. In a methodof using an identification system, steps include providing anidentification card having a substrate including an internal memorydevice and an internal control device in electronic communication forproviding activation of the card for use by an authorized user;inputting a biometric identifier input corresponding to the user via abiometric input device that communicates with the internal memory deviceand the internal control device for providing the biometric identifierinput (10); transmitting the biometric identifier input to a databasestored on a remote computer (11, 12); validating the biometricidentifier input and/or the user by confirming the existence of a matchto the biometric identifier that corresponds to the user that is storedin the database on the remote computer (13, 14); receiving a validationresponse from the database by the card, while the card is incommunication with the database for the transmission of the biometricidentifier input and receipt of the validation response (15, 16);confirming a singular, unique existence of the biometric identifierinput and/or the user in the database (17); denying the transactionand/or the authentication where more than a singular unique registrationexists in the database for the biometric identification input and/or theuser (19, 20); and where the card has never been authenticated and/oractivated previously, confirming registration of the biometricidentifier and corresponding user in the database (18).

The device includes a substrate having a fingerprint sensor, internalmemory means for storing digitized information related to a fingerprintof the at least one user, activation means for initiating internalstorage of the information related to at least one fingerprintcorresponding to the at least one user upon activation by the at leastone user for a first time thereby creating and recording at least oneregistered user, an internal controller, verification means forindicating that the information related to the at least one fingerprintcorresponding to the at least one registered user has been successfullystored in the internal memory means, and authentication means forcomparing information related to a sensed fingerprint corresponding tothe at least one user that has been sensed with the stored fingerprintinformation of the registered user and for producing an authenticationsignal if the sensed fingerprint information matches the storedfingerprint information of the at least one registered user.

The fingerprint sensor is capable of sensing information related to atleast one fingerprint and the sensed fingerprint is either used toregister a new user, if multiple users are permitted for the particulardevice, or is used to verify that the information relating to the sensedfingerprint matches the information of the fingerprint of each of theregistered users. In the case where more than one user may be registeredfor a device, each user has corresponding fingerprint identificationinformation that is unique to that user and registered similarly.

The internal memory device is in communication with the biometricidentification input device. In one embodiment, the internal memorydevice is electrically connected to a fingerprint sensor, toverification means, to authentication means, and to activation means,which are all configured to be in communication with the internal memoryof the card. Also, the internal controller is capable of independentlyprogramming the internal memory means with the information related to afingerprint corresponding to the at least one user by generating aninternal control signal to initiate transfer of the information relatedto the sensed fingerprint corresponding to the at least one user to theinternal memory means for storage therein.

Additionally, the verification means and/or authentication means furtherincludes a transmitter for indicating that the information related to afingerprint has been successfully stored to create the at least oneregistered user. This verification and/or authentication signal includesan encoded or encrypted information packet output for verificationand/or for authentication that the biometric identification input, whichmay be information relating to at least one fingerprint of the user, thevoice of the user, and the like, matches that of the at least oneregistered user that is transmitted or communicated via an encodedinformation packet output transmitter located within the biometricdevice substrate. The output from the device may be converted into anencoded or encrypted information packet that is output by a transmitterlocated within the device.

According to a preferred embodiment of the present invention, thebiometric device also includes a database for receiving initialregistration information about each of the at least one user of thesystem, wherein the database and card registration or initial activationare performed substantially contemporaneously, thereby ensuring that noduplicate identifications are created in the system. Duplicate checkingmay occur for each new registration to ensure that, for a given user,there is not already a preexisting registration in the system.Preferably, this duplicate checking is performed using fingerprintinformation from the user, which may include at least one digitfingerprint, a multiplicity of digits fingerprints, or fingerprints fromall hand digits of the user. These fingerprints are checked from thefingerprints registered by all users of the system as recorded in thedatabase. This permits the user to be identified as one unique user outof the many users within the system, or even those outside the system,which are not yet registered for the purpose of permitting use of aself-authenticated card for transactions without requiring communicationfor each transaction with the database.

Preferably, the present invention provides for an identification systemfor authenticating a user wherein the system includes an identificationcard having a substrate including an internal memory device and aninternal control device in electronic communication for providingactivation of the card for use by an authorized user, wherein the userinputs a biometric identifier input via a biometric input device thatcommunicates with the internal memory device and the internal controldevice for providing the biometric identifier input, the biometricidentifier input is validated and authenticated upon transmission of thebiometric identifier input to a database stored on a remote computer andreceipt of a validation response from the database, wherein the card isin communication with the database for the transmission of the biometricidentifier input and receipt of the validation response, and wherein thedatabase confirms the singular, unique existence of a match to thebiometric identifier input that corresponds to the user, wherein thematch is stored in the database. Preferably, the biometric identifierinput corresponds to at least one fingerprint of the user, which isrecorded and authenticated on the card by initially inputtinginformation corresponding to the at least one fingerprint of the userinto the substrate, which may be accomplished by an initial scanning,swiping, or otherwise registering it by a sensor, reader, or otherdevice for inputting the information into the card memory. The card thencommunicates the information corresponding to the at least onefingerprint of the user, which is stored on the card, to the databasefor validation and confirmation that no duplicate identification existsat that time in the database, i.e., that no match corresponds to theuser and/or to the biometric identification input by the user, therebypreventing duplicate registrations within the database for either theuser and/or for the biometric identification information input to thecard by the user.The biometric identifier input is then transmitted to the database. Thetransmission may be provided by data packet transmission, digitaltransmission, and/or tonal transmission representing the biometricidentifier input, which may include information relating to at least onefingerprint of the user, voice of the user, and the like, andcombinations thereof.In a preferred embodiment of the present invention, the card providesfor freestanding identification of the user, i.e., once the user and/orthe user's corresponding biometric identifier input is registered in thedatabase, the card will activate on its own, without requiringcommunication with the database, for confirming the identification ofthe user and the user's biometric identification input, with thatbiometric identification input initially provided and registered on thecard and validated by the database. Advantageously, this system providesfor the singular, unique existence of the match in the database forpreventing duplicate identifications for the biometric identifier inputas well as providing a card that may not be activated by anyone exceptthe user providing his/her unique biometric identification input, whichwas initially input upon registration of the card with the database.Thus, the singular, unique existence of the match in the databaseprevents duplicate identifications for the user within the database,while the registration of the biometric identification input for thepredetermined, authorized user of the card is stored in the freestandingmemory of the card, as well as in the database, such that the card maynot be activated without authentication and/or validation of the userand/or the user's biometric identification input properly and confirmedon the card. As such, the system provides for a controlled singularityof registration for the user and/or the biometric identification inputcorresponding to the user is provided by an essentially simultaneousregistration of the card and of the user and/or the biometricidentification input into the database through the card as set forthhereinabove.Preferably, to ensure security, the registration of the user and theuser's corresponding biometric identification input to the card and tothe database is made in person by the user at a designated computer incommunication with the remote computer of the database. Furthermore, theregistration may be made with a confirming assistant, such as anauthorized person and/or a video capture of the user making theregistration.

Once the user has initially registered his/her biometric identificationinput to the card and the database, and that registration is confirmedby the database as having a singular match, with no duplication of theuser and/or the biometric identification input, a transaction isauthorizable by the system, i.e., the database will permit the card userto perform a transaction, such as a purchase, an information query,authorization for entry or access to a computer system(s) or physicallocation, health care and/or other services approval, insurance filing,pharmaceutical prescription pick-up, and the like.

Importantly, any business, economic, or other transaction that is madeby the user follows validation of the user and the biometricidentification input by the database or another database that is incommunication with the first database, or without any communication to adatabase, but where the card itself provides authorization based uponauthentication of the present card holder as the predeterminedauthorized card user with his/her corresponding biometric identificationinput being stored on the card and validated within a predetermined timeperiod on the database prior to the transaction. This validation of theuser by the database needs to occur at least one time prior to anytransaction being completed, but may occur more than one time, e.g.,randomly or at predetermined times, to prevent fraudulent use of thedevice in a transaction.

In a preferred embodiment of the system, a charge may be assessed to theuser for accessing the database, wherein the charge is stored in theinternal memory device of the card and/or the database. In this manner,a database management fee may be assessed so that the system may bemaintained and/or upgraded.

The present invention may be used either for a closed system having amultiplicity of users, i.e., where membership is the basis forregistration, e.g., benefits receipt, healthcare access, insurance,welfare, security clearance, CIA, FBI, secret services, military,country clubs, and the like, where the database will include members andexclude access to non-members, or for an open system having amultiplicity of users, e.g., credit card use at a point of merchanttransaction, drivers licenses, national identification cards, passports,visas, immigration and border control, etc.

Significantly, the freestanding or standalone card havingself-authenticating fingerprint identification activation is initializedcontemporaneously with the fingerprint entry into the database; thisprovides for an essentially simultaneous registration of the card user'sfingerprint with the card and with the database, which serves to preventfraud by counterfeiting cards or by attempts to register duplicate cardsper any given user. This controlled singularity of registration may beaccomplished using the fingerprint of at least one digit of the user, ora multiplicity of digits, or all digits of the user. Thiscontemporaneous registration is preferably conducted in person andassistance is provided by a database authorized official, wherebyadditional bio-identifiers and/or documentation confirming an individualuser's identity are required at the time of registration.

A variety of transaction functions are permitted by the card when theuser has successfully activated the card after the initial registration,including but not limited to transaction functions that provide forapproval or denial of card use and automatic database communication withthe card for updating the card after initial registration, including butnot limited to updating, invalidating, timer synchronizing, and thelike. The approval for card use occurs where the user's fingerprint(s)are registered in the system database as well as on the card itself; thecard may be in communication with the database automatically and/or atuse points of the card to confirm the registration of the fingerprint(s)on the card matches that within the system, that the fingerprint(s)appear only once in the database, and that the fingerprint(s) areassociated with the person identified on the card; when these factorsare satisfied, then the card is activated for use, and may so indicatevia a visual and/or audible indicator(s).

Use of the device according to the present invention may be a source ofrevenue, i.e., a charge or fee may be assessed against the card issuerfor each use of the card, and/or for each query to the database for agiven card. Given the benefits of use of the card for any giventransaction, whether that be credit card use for a purchase, membershipconfirmation, proximity access, welfare benefits use, services use by aprovider, etc., a fee may be associated with that transaction such thatusage of the cards that are confirmed in the database at their initialregistration, since the fraud prevention provides a much greatersavings. In this manner, the fee-per-transaction provides arevenue-generation means that funds the operation and maintenance of thedatabase.

The present invention is further directed to a method for using theidentification system set forth in the foregoing comprising the stepsof:

providing an identification card having a substrate including aninternal memory device and an internal control device in electroniccommunication for providing activation of the card for use by anauthorized user;

inputting a biometric identifier input corresponding to the user via abiometric input device that communicates with the internal memory deviceand the internal control device for providing the biometric identifierinput;

transmitting the biometric identifier input to a database stored on aremote computer;

validating the biometric identifier input and/or the user by confirmingthe existence of a match to the biometric identifier input thatcorresponds to the user that is stored in the database on the remotecomputer;

receiving a validation response from the database by the card, while thecard is in communication with the database for the transmission of thebiometric identifier input and receipt of the validation response;

confirming a singular, unique existence of the biometric identifierinput and/or the user in the database;

and, where the card has never been authenticated and/or activatedpreviously, confirming registration of the biometric identifier andcorresponding user in the database.

Furthermore, the method may include the step of authorizing atransaction for the card based upon the confirmation, where the card hadpreviously been authenticated and/or activated previously. Also, anadditional or alternative step of denying a transaction and/or theauthentication where more than a singular unique registration exists inthe database for the biometric identification input and/or the user isincluded in the method according to the present invention.

Certain modifications and improvements will occur to those skilled inthe art upon a reading of the foregoing description. By way of example,the substrate may be substantially compact such that it can be used asor within a smart card, or credit card sized device, including amagnetic swipe to be loaded with or containing additional informationabout the registered user. Alternatively, the substrate may be a largerembodiment, e.g., a computer circuit board. Another alternative, oradditional, security measure relating to the biometric identificationinput includes onboard voice authentication by means of an integralmicrophone and onboard voice pattern storage and onboard control andrecognition and database interactivity for assured voice authenticationand singularity of registration. All modifications and improvements havebeen deleted herein for the sake of conciseness and readability but areproperly within the scope of the claims.

1. An identification system for authenticating a user comprising: anidentification card having a substrate including a biometric inputdevice, an internal memory device, and an internal control device inelectronic communication for providing self-activation of theidentification card for use by an authorized user, wherein the userinputs a biometric identifier input via a biometric input device thatcommunicates with the internal memory device and the internal controldevice for providing the biometric identifier input, wherein a databasestored on a remote computer is provided for receiving initialregistration and optionally for subsequent checks of validity andsingularity of the biometric information stored on the identificationcard and within the database relating to the authorized user, thebiometric identifier input is initially validated upon transmission ofthe biometric identifier input to the database stored on a remotecomputer and receipt of a validation response from the database, whereinthe identification card is initially in communication with the databasefor transmission of the biometric identifier input and receipt of thevalidation response for initial registration, and wherein the databaseconfirms the singular, unique existence of a match to the biometricidentifier input that corresponds to the user, wherein after initialregistration with the database the identification card is independentlyself-activated for authorizing a transaction, permitting but withoutrequiring communication with the database for confirming the biometricidentifier input of the user, wherein the transaction and/or theauthentication is denied where more than a singular unique registrationexists in the database for the biometric identification input and/or theuser, and wherein the match is stored in the database.
 2. The systemaccording to claim 1, wherein the biometric identifier input correspondsto at least one fingerprint of the user.
 3. The system according toclaim 1, wherein the transmission of the biometric identifier input isprovided by data packet transmission.
 4. The system according to claim1, wherein the transmission includes tonal transmission representing thebiometric identifier input.
 5. The system according to claim 1, whereinthe identification card provides for freestanding identification of theuser.
 6. The system according to claim 1, wherein the singular, uniqueexistence of the match in the database prevents duplicateidentifications for the biometric identifier input.
 7. The systemaccording to claim 1, wherein the singular, unique existence of thematch in the database prevents duplicate identification for the user. 8.The system according to claim 1, wherein the database includes a closedsystem of a multiplicity of users.
 9. The system according to claim 8,wherein the closed system is based upon a membership that excludesnon-members.
 10. The system according to claim 1, wherein the databaseincludes an open system of a multiplicity of users.
 11. The systemaccording to claim 1, further including a controlled singularity ofregistration for the user and/or the biometric identification inputcorresponding to the user is provided by an essentially simultaneousinitial registration of the card and of the user and/or the biometricidentification input into the database.
 12. The system according toclaim 11, wherein the initial registration is made in person by the userat a designated computer in communication with the remote computer ofthe database.
 13. The system according to claim 12, wherein theregistration is made with a confirming assistant.
 14. The systemaccording to claim 13, further including a charge that is assessed tothe user for accessing the database, the charge being stored in theinternal memory device of the card and/or the database.
 15. The systemaccording to claim 1, wherein an authentication signal is produced ifthe biometric identification input of the user matches the biometricidentification input stored on the identification card.
 16. The systemaccording to claim 1, wherein the transaction that is made by the userfollows initial registration and validation of the user and thebiometric identification input by the database.
 17. The system accordingto claim 1, comprising automatic database communication with the cardfor updating the card after initial registration.
 18. A method for usingan identification system comprising the steps of: providing anidentification card having a substrate including a biometric inputdevice, an internal memory device, and an internal control device inelectronic communication for providing self-activation of theidentification card for use by an authorized user; inputting a biometricidentifier input corresponding to the user via the biometric inputdevice that communicates with the internal memory device and theinternal control device for providing the biometric identifier input;transmitting the biometric identifier input to a database stored on aremote computer for receiving initial registration and optionally forsubsequent checks of validity and singularity of biometric informationrelating to the authorized user stored on the identification card and inthe database; initially validating the biometric identifier input and/orthe user by confirming the existence of a match to the biometricidentifier input that corresponds to the user that is stored in thedatabase on the remote computer; receiving a validation response forinitial registration from the database by the identification card whilethe identification card is in communication with the database for thetransmission of the biometric identifier input and receipt of theinitial registration validation response; confirming a singular, uniqueexistence of the biometric identifier input corresponding to the user onthe card and in the database during initial registration;self-activating the identification card after initial registration withthe database for authorizing a transaction without requiringcommunication with the database for confirming the biometric identifierinput of the user; denying the transaction and/or the authenticationwhere more tan a singular unique registration exists in the database forthe biometric identification input and/or the user.
 19. The methodaccording to claim 18, further including a transaction wherein anauthentication signal is produced if the biometric identification inputof the user matches the biometric identification input stored on theidentification card.
 20. The method according to claim 18, furtherincluding the step of authorizing the transaction for the card basedupon the confirmation, where the card user's biometric identifier inputhas not previously been registered.